[Git][security-tracker-team/security-tracker][master] 2 commits: Add CVE-2020-8112/openjpeg2
Salvatore Bonaccorso
carnil at debian.org
Wed Jan 29 21:11:46 GMT 2020
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
307fce90 by Salvatore Bonaccorso at 2020-01-29T22:10:58+01:00
Add CVE-2020-8112/openjpeg2
- - - - -
63292b27 by Salvatore Bonaccorso at 2020-01-29T22:11:19+01:00
Mark CVE-2020-8122 as no-dsa for buster and stretch
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -645,7 +645,10 @@ CVE-2020-8114
CVE-2020-8113
RESERVED
CVE-2020-8112 (opj_t1_clbl_decode_processor in openjp2/t1.c in OpenJPEG 2.3.1 through ...)
- TODO: check
+ - openjpeg2 <unfixed>
+ [buster] - openjpeg2 <no-dsa> (Minor issue)
+ [stretch] - openjpeg2 <no-dsa> (Minor issue)
+ NOTE: https://github.com/uclouvain/openjpeg/issues/1231
CVE-2020-8111
RESERVED
CVE-2020-8110
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/34a9864a6b7d0db0449828d7c9cb9f2ab1cf4cf2...63292b2721253579f20243868ecb5cdc5d4d0db0
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/34a9864a6b7d0db0449828d7c9cb9f2ab1cf4cf2...63292b2721253579f20243868ecb5cdc5d4d0db0
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200129/5e55c9fb/attachment.html>
More information about the debian-security-tracker-commits
mailing list